Windows Address Book Contact Record Vulnerability - CVE-2006-2386
A remote code execution vulnerability in a component of Outlook Express could allow an attacker who sent a Windows Address Book file to a user of an affected system to take complete control of the system.